From e598b248f8ac4d8decc0778a18f8d84a0e889024 Mon Sep 17 00:00:00 2001
From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com>
Date: Sat, 14 Feb 2026 04:33:17 +0000
Subject: [PATCH 1/2] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-AXIOS-15252993
- https://snyk.io/vuln/SNYK-JS-AJV-15274295
- https://snyk.io/vuln/SNYK-JS-QS-15268416
---
 package.json | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/package.json b/package.json
index 972102cd08ee..e60446860882 100644
--- a/package.json
+++ b/package.json
@@ -34,7 +34,7 @@
     "csurf": "^1.11.0",
     "dayjs": "^1.10.4",
     "dotenv": "^9.0.2",
-    "express": "^4.17.1",
+    "express": "^4.22.0",
     "express-rate-limit": "^5.2.6",
     "express-timeout-handler": "^2.2.0",
     "flat": "^5.0.2",
@@ -114,7 +114,7 @@
     "@typescript-eslint/parser": "^4.26.1",
     "async": "^3.2.0",
     "await-sleep": "0.0.1",
-    "babel-loader": "^8.2.2",
+    "babel-loader": "^10.0.0",
     "babel-plugin-styled-components": "^1.12.0",
     "babel-preset-env": "^1.7.0",
     "chalk": "^4.1.1",
@@ -123,11 +123,11 @@
     "count-array-values": "^1.2.1",
     "cross-env": "^7.0.3",
     "csp-parse": "0.0.2",
-    "css-loader": "^4.3.0",
+    "css-loader": "^6.0.0",
     "csv-parse": "^4.16.0",
     "dedent": "^0.7.0",
     "domwaiter": "^1.3.0",
-    "eslint": "^7.28.0",
+    "eslint": "^10.0.0",
     "eslint-config-prettier": "^8.3.0",
     "eslint-config-standard": "^16.0.2",
     "eslint-plugin-import": "^2.23.2",
@@ -168,14 +168,14 @@
     "sass-loader": "^11.1.1",
     "start-server-and-test": "^2.0.3",
     "strip-ansi": "^7.0.0",
-    "style-loader": "^2.0.0",
-    "supertest": "^6.1.3",
+    "style-loader": "^3.0.0",
+    "supertest": "^7.1.3",
     "ts-loader": "^9.2.3",
     "typescript": "^4.3.2",
     "url-template": "^2.0.8",
     "webpack": "^5.37.0",
     "webpack-cli": "^4.7.0",
-    "website-scraper": "^4.2.3"
+    "website-scraper": "^5.0.0"
   },
   "optionalDependencies": {
     "jest-puppeteer": "^5.0.3",

From 7ddec5451b98cc780a5f6f3bbaa7a1ab6d403d64 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 15 Feb 2026 05:25:21 +0000
Subject: [PATCH 2/2] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-AXIOS-15252993
- https://snyk.io/vuln/SNYK-JS-AJV-15274295
- https://snyk.io/vuln/SNYK-JS-QS-15268416